$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa File: AS48605.roa (raw, json) Hash identifier: I97+XzL7zTH9y183VkVoP9aVmbcXeVrAusdysJqfaaI= Subject key identifier: D4:82:F8:82:3A:FB:58:2C:F3:BE:47:1C:B4:6D:2E:6C:74:EB:BE:D4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0FEDE6EFF12B183D4C67F46A66E3BED365690668 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa Signing time: Mon 27 Jan 2025 23:45:41 +0000 ROA not before: Mon 27 Jan 2025 23:40:41 +0000 ROA not after: Mon 26 Jan 2026 23:45:41 +0000 asID: 48605 IP address blocks: 2a05:dfc1:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ed:e6:ef:f1:2b:18:3d:4c:67:f4:6a:66:e3:be:d3:65:69:06:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 27 23:40:41 2025 GMT Not After : Jan 26 23:45:41 2026 GMT Subject: CN=D482F8823AFB582CF3BE471CB46D2E6C74EBBED4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:8b:73:bf:2e:58:46:93:b0:ad:68:22:a3:56: 27:19:a7:39:1b:2a:f3:85:c9:c3:77:6a:5e:7b:0c: 3b:3c:32:25:68:30:23:b7:df:97:54:a1:9a:9b:c9: f6:71:5c:0d:1f:2d:0a:4f:4a:c9:09:b3:36:a4:6d: 7f:0f:7f:73:cf:c7:ed:38:46:e0:06:66:be:ef:3d: 73:1c:47:35:9b:8d:2a:5f:c0:ca:82:af:b4:96:f0: ff:63:1f:86:94:a0:70:cb:1c:9e:0d:57:48:58:d6: cb:5d:9d:9c:a5:f6:c7:05:a0:04:ae:8c:fe:62:70: e1:ea:c6:34:a3:2b:08:5c:93:66:71:88:f0:b0:7e: 72:f4:9e:37:84:00:12:35:3a:4c:66:8b:30:17:a2: 6a:9a:c5:48:64:7c:c2:c0:ae:c6:6f:01:81:9e:53: 3a:90:c5:0d:59:e5:c0:4e:8e:ed:dd:5e:4f:ff:da: 6e:d7:ba:cb:17:ac:f6:d9:a2:96:3a:77:30:81:f4: 50:60:68:2e:24:18:a1:ce:38:e7:fe:44:ed:dd:03: e3:e0:df:bd:61:fb:9a:6d:15:56:ed:08:49:fb:22: 9f:c7:f2:f7:4e:65:8b:a0:f1:83:10:76:ba:11:08: 2b:65:2f:b5:36:50:d7:4f:ef:91:97:51:c3:2e:bf: 43:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:82:F8:82:3A:FB:58:2C:F3:BE:47:1C:B4:6D:2E:6C:74:EB:BE:D4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1200::/40 Signature Algorithm: sha256WithRSAEncryption 4b:a2:d7:44:ca:0c:22:a7:5b:7b:46:bc:8f:d8:cf:b8:01:82: 22:6a:e4:4d:d3:a1:b7:05:08:21:f7:2c:fe:5a:c6:db:8e:43: 0b:99:f9:bf:4f:d1:f7:43:c2:3c:0a:6a:01:f2:6d:8d:14:eb: 1b:23:16:32:49:d7:98:c6:dd:0a:48:29:d6:2e:5b:eb:42:67: 33:0d:17:4e:ad:ac:04:a2:e8:73:70:0a:1b:81:2f:fa:e0:9a: 4c:d0:b7:e0:21:85:fc:78:9c:81:5f:dc:49:81:a6:9d:2d:f2: 10:88:c8:b2:c4:e1:f8:1c:ca:26:f2:07:75:aa:87:00:17:97: be:27:7d:88:ba:8c:5d:6f:5d:73:be:bd:94:c2:6a:89:9a:de: 41:06:d8:8d:9b:ab:2b:92:40:0c:8f:0c:e8:02:8e:43:76:a1: 13:2e:2d:22:d1:fd:fa:18:b3:36:fe:81:da:ef:8b:0c:15:6c: 62:30:f8:60:e6:8b:75:50:50:e7:33:5b:76:77:5a:e8:0c:fa: 34:cd:5d:66:00:a0:7d:2d:94:3f:87:85:9e:68:5d:5c:0d:94: 79:e8:a2:d4:d7:2f:c4:5c:3c:ea:48:11:61:15:6e:9f:54:0f: 3e:aa:e0:aa:c1:0f:30:96:3a:b6:b1:75:db:3d:07:92:ab:ba: 0b:8f:97:42 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUD+3m7/ErGD1MZ/RqZuO+02VpBmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAxMjcyMzQwNDFaFw0yNjAxMjYyMzQ1NDFaMDMxMTAvBgNV BAMTKEQ0ODJGODgyM0FGQjU4MkNGM0JFNDcxQ0I0NkQyRTZDNzRFQkJFRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2i3O/LlhGk7CtaCKjVicZpzkb KvOFycN3al57DDs8MiVoMCO335dUoZqbyfZxXA0fLQpPSskJszakbX8Pf3PPx+04 RuAGZr7vPXMcRzWbjSpfwMqCr7SW8P9jH4aUoHDLHJ4NV0hY1stdnZyl9scFoASu jP5icOHqxjSjKwhck2ZxiPCwfnL0njeEABI1OkxmizAXomqaxUhkfMLArsZvAYGe UzqQxQ1Z5cBOju3dXk//2m7XussXrPbZopY6dzCB9FBgaC4kGKHOOOf+RO3dA+Pg 371h+5ptFVbtCEn7Ip/H8vdOZYug8YMQdroRCCtlL7U2UNdP75GXUcMuv0MrAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU1IL4gjr7WCzzvkcctG0ubHTrvtQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg2MDUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BEjANBgkqhkiG9w0BAQsFAAOCAQEAS6LX RMoMIqdbe0a8j9jPuAGCImrkTdOhtwUIIfcs/lrG245DC5n5v0/R90PCPApqAfJt jRTrGyMWMknXmMbdCkgp1i5b60JnMw0XTq2sBKLoc3AKG4Ev+uCaTNC34CGF/Hic gV/cSYGmnS3yEIjIssTh+BzKJvIHdaqHABeXvid9iLqMXW9dc769lMJqiZreQQbY jZurK5JADI8M6AKOQ3ahEy4tItH9+hizNv6B2u+LDBVsYjD4YOaLdVBQ5zNbdnda 6Az6NM1dZgCgfS2UP4eFnmhdXA2Ueeii1NcvxFw86kgRYRVun1QPPqrgqsEPMJY6 trF12z0Hkqu6C4+XQg== -----END CERTIFICATE-----Generated at Fri Apr 4 16:59:56 2025 by rpki-client